Latest Cybersecurity News and Articles
Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain
22 April 2026
Cybersecurity researchers have warned of malicious images pushed to the official "checkmarx/kics" Docker Hub repository.
In an alert published today, software supply chain security company Socket revealed that unknown threat actors managed to have overwritten existing tags, including v2.1.20 and alpine, while also introducing a new v2.1.21 tag that does not correspond to an official release. The
Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens
22 April 2026
Cybersecurity researchers have flagged a fresh set of packages that have been compromised by bad actors to deliver a self-propagating worm that spreads through stolen developer npm tokens.
The supply chain worm has been detected by both Socket and StepSecurity, with the companies tracking the activity under the name CanisterSprawl owing to the use of an ICP canister to exfiltrate the stolen data
Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API
22 April 2026
The threat actor known as Harvester has been attributed to a new Linux version of its GoGra backdoor deployed as part of attacks likely targeting entities in South Asia.
"The malware uses the legitimate Microsoft Graph API and Outlook mailboxes as a covert command-and-control (C2) channel, allowing it to bypass traditional perimeter network defenses," the Symantec and Carbon Black Threat Hunter
After Bluesky, Mastodon Targeted in DDoS Attack
22 April 2026
The DDoS attack caused a major outage, but Mastodon mitigated it within a few hours.
The post After Bluesky, Mastodon Targeted in DDoS Attack appeared first on SecurityWeek.
Most Serious Cyberattacks Against the UK Now From Russia, Iran and China, Cyber Chief Says
22 April 2026
British businesses need to prepare themselves to defend against cyberattacks because the U.K. could be targeted “at scale,” if it became involved in an international conflict.
The post Most Serious Cyberattacks Against the UK Now From Russia, Iran and China, Cyber Chief Says appeared first on SecurityWeek.
Saudi Arabia’s Cybersecurity Startups Guard the Region’s Digital Shift
22 April 2026
This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – Apr. 22, 2026 – Read the full story in Cairo SCENE Digital transformation across the Middle East has accelerated rapidly in recent years, and cybersecurity has followed close behind. Saudi Arabia is one
The post Saudi Arabia’s Cybersecurity Startups Guard the Region’s Digital Shift appeared first on Cybercrime Magazine.
New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention
22 April 2026
Dubbed Lotus Wiper, the malware targets recovery mechanisms, overwrites drives, and systematically deletes files.
The post New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention appeared first on SecurityWeek.
World-first NCSC-engineered device secures vulnerable display links
22 April 2026
SilentGlass, a plug-and-play device, actively blocks any unexpected or malicious HDMI and Display Port connections.
Mirai Botnet Targets Flaw in Discontinued D-Link Routers
22 April 2026
The exploitation of the command injection vulnerability started one year after public disclosure and PoC exploit code publication.
The post Mirai Botnet Targets Flaw in Discontinued D-Link Routers appeared first on SecurityWeek.
Are SBOMs Failing? Supply Chain Attacks Rise as Security Teams Struggle With SBOM Data
22 April 2026
Researcher says the missing piece is a governance-driven intelligence layer that turns SBOM and VEX data into explainable security decisions.
The post Are SBOMs Failing? Supply Chain Attacks Rise as Security Teams Struggle With SBOM Data appeared first on SecurityWeek.
Claude Mythos Finds 271 Firefox Vulnerabilities
22 April 2026
All the flaws could have also been found by an elite human researcher, according to Mozilla.
The post Claude Mythos Finds 271 Firefox Vulnerabilities appeared first on SecurityWeek.
Lotus Wiper Malware Targets Venezuelan Energy Systems in Destructive Attack
22 April 2026
Cybersecurity researchers have discovered a previously undocumented data wiper that has been used in attacks targeting Venezuela at the end of last year and the start of 2026.
Dubbed Lotus Wiper, the novel file wiper has been used in a destructive campaign targeting the energy and utilities sector in Venezuela, per findings from Kaspersky.
"Two batch scripts are responsible for initiating the
North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks
22 April 2026
The campaigns focus on financial organizations, including cryptocurrency, venture capital, and blockchain entities.
The post North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks appeared first on SecurityWeek.
Toxic Combinations: When Cross-App Permissions Stack into Risk
22 April 2026
On January 31, 2026, researchers disclosed that Moltbook, a social network built for AI agents, had left its database wide open, exposing 35,000 email addresses and 1.5 million agent API tokens across 770,000 active agents.
The more worrying part sat inside the private messages. Some of those conversations held plaintext third-party credentials, including OpenAI API keys shared between agents,
Google Antigravity in Crosshairs of Security Researchers, Cybercriminals
22 April 2026
Researchers discovered a remote code execution vulnerability and cybercriminals are using its reputation to deliver malware.
The post Google Antigravity in Crosshairs of Security Researchers, Cybercriminals appeared first on SecurityWeek.
Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug
22 April 2026
Microsoft has released out-of-band updates to address a security vulnerability in ASP.NET Core that could allow an attacker to escalate privileges.
The vulnerability, tracked as CVE-2026-40372, carries a CVSS score of 9.1 out of 10.0. It's rated Important in severity. An anonymous researcher has been credited with discovering and reporting the flaw.
"Improper verification of cryptographic
Oracle Patches 450 Vulnerabilities With April 2026 CPU
22 April 2026
The company released 481 new security patches across 28 product families, including over 300 fixes for remotely exploitable, unauthenticated flaws.
The post Oracle Patches 450 Vulnerabilities With April 2026 CPU appeared first on SecurityWeek.
Mustang Panda’s New LOTUSLITE Variant Targets India Banks, South Korea Policy Circles
22 April 2026
Cybersecurity researchers have discovered a new variant of a known malware called LOTUSLITE that's distributed via a theme related to India's banking sector.
"The backdoor communicates with a dynamic DNS-based command-and-control server over HTTPS and supports remote shell access, file operations, and session management, indicating a continued espionage-focused capability set rather than
Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape
22 April 2026
A critical security vulnerability has been disclosed in a Python-based sandbox called Terrarium that could result in arbitrary code execution.
The vulnerability, tracked as CVE-2026-5752, is rated 9.3 on the CVSS scoring system.
"Sandbox escape vulnerability in Terrarium allows arbitrary code execution with root privileges on a host process via JavaScript prototype chain traversal," according to
Rental platform unnecessarily collected the data of millions of Australians, privacy commissioner finds
21 April 2026
2Apply’s over-collection of personal information adds to the power of the real estate industry in the competitive rental market, Carly Kind saysFollow our Australia news live blog for latest updatesGet our breaking news email, free app or daily news podcastAn online rental platform has been urged to stop collecting users’ personal information after the Australian privacy commissioner found the gathering of “excessive” data compounded the vulnerability of tenants amid the housing crisis.RentTech platforms are increasingly used by real estate agents in Australia for people applying for rental properties to submit applications and supporting documentation. The Australian Housing and Urban Research Institute has identified 57 different rent platforms operating in Australia. Continue reading...